Wing328

**Name of the Vulnerable Software and Affected Versions** openapi-generator-online versions prior to 5.1.0 **Description** The openapi-generator-online tool creates insecure temporary folders during the code generation process, allowing any user on the system to read and append to the auto-generated files. This issue can lead to local privilege escalation, as an attacker can observe the creation of a temporary subdirectory and race to complete its creation, potentially executing attacker-controlled code. The vulnerability exists due to a race condition between the deletion of a randomly generated temporary file and the creation of the temporary directory. **Recommendations** For versions prior to 5.1.0, update to the v5.1.0 stable version, which patches the issue by using `Files.createTempFile` instead of `File.createTempFile`. As a temporary workaround, consider restricting access to the temporary directory to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenAPI Generator versions prior to 5.1.0 **Description** The issue arises from the use of the JDK method `File.createTempFile`, which creates insecure temporary files that can leave application and system data vulnerable to attacks. Auto-generated code in Java and Scala that deals with uploading or downloading binary data through API endpoints will create these insecure temporary files during the process. For example, if an API endpoint returns a PDF file, the auto-generated clients will first download the PDF into an insecure temporary file that can be read by anyone on the system. **Recommendations** For versions prior to 5.1.0, update to the v5.1.0 stable version, which patches the issue by changing the generated code to use the JDK method `Files.createTempFile`. As a temporary workaround, consider restricting access to the temporary files created by the auto-generated code to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenAPI Generator versions prior to 5.1.0 **Description** The issue arises from using `File.createTempFile` in JDK, resulting in the creation of insecure temporary files. This can leave application and system data vulnerable to attacks, specifically impacting unix-like systems where the local system temporary directory is shared between all users. The OpenAPI Generator Maven plug-in creates these insecure temporary files during the code generation process to store OpenAPI specification files, potentially disclosing the contents of the specification file to other local users. **Recommendations** For versions prior to 5.1.0, update to the v5.1.0 stable version, which patches the issue with `Files.createTempFile`.

**Name of the Vulnerable Software and Affected Versions** OpenAPI Generator versions prior to 4.0.0-20190419.052012-560 **Description** The issue concerns the use of insecure http:// URLs in various build files, potentially leading to insecurely resolved dependencies. **Recommendations** For versions prior to 4.0.0-20190419.052012-560, update to version 4.0.0-20190419.052012-560 or later to resolve the issue.